docker_practice/container_security
2014-09-05 16:13:28 +08:00
..
control_group.md Add the container security chapter 2014-09-05 16:13:28 +08:00
daemon_sec.md Add the container security chapter 2014-09-05 16:13:28 +08:00
kernel_capability.md Add the container security chapter 2014-09-05 16:13:28 +08:00
kernel_ns.md Add the container security chapter 2014-09-05 16:13:28 +08:00
other_feature.md Add the container security chapter 2014-09-05 16:13:28 +08:00
README.md Add the container security chapter 2014-09-05 16:13:28 +08:00
summary.md Add the container security chapter 2014-09-05 16:13:28 +08:00

#容器安全 评估docker的安全性时主要考虑3个方面:

  • 由内核中namespace和cgruoups提供的容器的内在安全
  • docker程序本身的抗攻击性 加固内核安全性来影响容器的安全性